GHSA-p5j5-4j3q-8mq8: TYPO3 HTML Sanitizer allows Cross-site Scripting
mediumvulnerability
security
Summary
This item describes TYPO3 HTML Sanitizer (a tool that removes potentially dangerous code from HTML), which has a Cross-site Scripting vulnerability (XSS, where attackers inject malicious scripts into web pages). The content provided explains the framework for measuring vulnerability severity through metrics like attack vector, complexity, and impact, but does not describe the actual vulnerability details or its fix.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.0%
Patch Available
Yes
Disclosure Date
June 12, 2026
Classification
Attack SophisticationModerate
Affected Packages
typo3/html-sanitizer@< 2.3.2 (fixed: 2.3.2)
Monthly digest — independent AI security research
Original source: https://github.com/advisories/GHSA-p5j5-4j3q-8mq8
First tracked: June 12, 2026 at 08:00 PM
Classified by LLM (prompt v3) · confidence: 95%